<?php
/* 
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */

/**
 * Description of SQLInjection
 *
 * @author Albuquerque
 */
class SQLInjection {
    //put your code here

    public static function anti_sql_injection($str){
        /* if (!is_numeric($str)) {
	        $str = get_magic_quotes_gpc() ? stripslashes($str) : $str;
	        $str = function_exists('mysql_real_escape_string') ? mysql_real_escape_string($str) : mysql_escape_string($str);
	    } */
	return $str;

        /*
          $sql = 'SELECT COUNT(id_usuario) ';
	    $sql .= 'FROM usuarios ';
           $sql .= 'WHERE usuario = \'' . anti_sql_injection($usuario)
         */
    }
}
?>
